Adam Greenhill

**Name of the Vulnerable Software and Affected Versions** Nikto versions 2.1.6 and earlier **Description** The issue is related to a lack of neutralization of special elements in OS command inputs when generating a CSV file with scan results. It allows a remote attacker to inject arbitrary OS commands via the Server field in an HTTP response header, which is directly injected into a CSV report. This can enable the attacker to execute arbitrary code using a specially crafted HTTP server. **Recommendations** For Nikto versions 2.1.6 and earlier, consider disabling the CSV report generation feature until a patch is available to prevent exploitation. Restrict access to the Server field in HTTP response headers to minimize the risk of arbitrary OS command injection. Avoid using the CSV report feature with untrusted HTTP servers until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.